Search for packages
Package details: pkg:alpm/archlinux/webkit2gtk-4.1@2.48.2-1
purl pkg:alpm/archlinux/webkit2gtk-4.1@2.48.2-1
Next non-vulnerable version 2.49.1-1
Latest non-vulnerable version 2.49.1-1
Risk 4.0
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-6m87-s96q-jbe9
Aliases:
CVE-2025-31205
The issue was addressed with improved checks. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. A malicious website may exfiltrate data cross-origin.
2.49.1-1
Affected by 0 other vulnerabilities.
VCID-avx3-4rsx-m7ga
Aliases:
CVE-2025-31215
The issue was addressed with improved checks. This issue is fixed in watchOS 11.5, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to an unexpected process crash.
2.49.1-1
Affected by 0 other vulnerabilities.
VCID-gh84-q8xn-eqbm
Aliases:
CVE-2025-24223
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to memory corruption.
2.49.1-1
Affected by 0 other vulnerabilities.
VCID-px8w-sspc-n3gk
Aliases:
CVE-2025-31204
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to memory corruption.
2.49.1-1
Affected by 0 other vulnerabilities.
VCID-spsh-69u8-43bp
Aliases:
CVE-2025-31206
A type confusion issue was addressed with improved state handling. This issue is fixed in watchOS 11.5, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to an unexpected Safari crash.
2.49.1-1
Affected by 0 other vulnerabilities.
VCID-t3ky-uwu7-u7cw
Aliases:
CVE-2025-31257
This issue was addressed with improved memory handling. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to an unexpected Safari crash.
2.49.1-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-eusr-zhu1-7fh4 Processing web content may lead to arbitrary code execution. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. The issue was addressed with improved memory handling. CVE-2023-42875
VCID-mhe9-8dcj-7fg2 A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. Processing web content may lead to arbitrary code execution. CVE-2023-42970

Date Actor Action Vulnerability Source VulnerableCode Version
2025-05-19T20:18:03.672779+00:00 Arch Linux Importer Fixing VCID-eusr-zhu1-7fh4 https://security.archlinux.org/AVG-2868 36.0.0
2025-05-19T20:18:03.661767+00:00 Arch Linux Importer Fixing VCID-mhe9-8dcj-7fg2 https://security.archlinux.org/AVG-2868 36.0.0
2025-05-18T13:48:52.177511+00:00 Arch Linux Importer Affected by VCID-gh84-q8xn-eqbm https://security.archlinux.org/AVG-2865 36.0.0
2025-05-18T13:48:52.164102+00:00 Arch Linux Importer Affected by VCID-px8w-sspc-n3gk https://security.archlinux.org/AVG-2865 36.0.0
2025-05-18T13:48:52.151286+00:00 Arch Linux Importer Affected by VCID-6m87-s96q-jbe9 https://security.archlinux.org/AVG-2865 36.0.0
2025-05-18T13:48:52.136559+00:00 Arch Linux Importer Affected by VCID-spsh-69u8-43bp https://security.archlinux.org/AVG-2865 36.0.0
2025-05-18T13:48:52.122178+00:00 Arch Linux Importer Affected by VCID-avx3-4rsx-m7ga https://security.archlinux.org/AVG-2865 36.0.0
2025-05-18T13:48:52.108932+00:00 Arch Linux Importer Affected by VCID-t3ky-uwu7-u7cw https://security.archlinux.org/AVG-2865 36.0.0